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[57J ABSTRACT 

The present invention is a portable client PDA with a touch 
screen or other equivalent user interface and having a 
microphone and local central processing unit (CPU) for 
processing voice commands and for processing biometric 
data to provide user verification. The PDA also includes a 
memory for storing financial and personal information of the 
user and I/O capability for reading and writing information 
to various cards such as smartcards, magnetic cards, optical 
cards or EAROM cards. The PDA includes a Universal 
Card, which is common generic smartcard with a unique 
imprint provided by a service provider, on which selected 
financial or personal information stored in the PDA can be 
downloaded to perform certain consumer transactions. The 
PDA includes a modem, a serial port and/or a parallel port 
so as to provide direct communication capability with 
peripheral devices (such as POS and ATM terminals) and is 
capable of transmitting or receiving information through 
wireless communications such as radio frequency (RF) and 
infrared (IR) communication. The present invention is pref- 
erably operated in two modes, i.e., a client/server mode and 
a local mode. The client/server mode is periodically per- 
formed to download a temporary digital certificate (which is 
necessary to access selected information stored in the PDA 
and to write such information to the Universal Card) from a 
central server of the service provider of the PDA and 
Universal Card. Next, the local mode of operation is per- 
formed by providing the PDA with biometric data and 
selecting one of the pre-enrolled credit cards that are stored 
in the PDA. Upon biometric verification, the Universal Card 
is written with the selected card information, which is then 
used to initiate a consumer transaction. In the absence of an 
unexpired digital certificate, however, the selected card 
information will not be written to the Universal Card, 
notwithstanding that the user may have passed local bio- 
metric verification. 

20 Claims, 5 Drawing Sheets 
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PORTABLE INFORMATION AND 
TRANSACTION PROCESSING SYSTEM AND 
METHOD UTILIZING BIOMETRIC 
AUTHORIZATION AND DIGITAL 
CERTIFICATE SECURITY 

This application is based on a provisional application 
Scr. No. 60/055,418, filed on Aug. 11, 1997. 

BACKGROUND OF THE INVENTION 

The present invention relates to a portable information 
and transaction processing system and method and, more 
particularly, to a portable information and transaction pro- 
cessing system and method which utilizes digital certificate 
security and biometric authorization to provide personal 
verification prior to processing user requested financial 
transactions and providing personal information. 

It is now widely accepted in the domestic consumer 
market that purchasing or selling goods or services with 
credit cards at point of sale (POS) terminals, as well as 
performing electronic transfer of funds at automated teller 
machine (ATM) terminals using ATM cards, is more efficient 
than using cash to pay for goods or services or paying debts. 
Utilizing cash as a means for purchasing goods or paying 
debts is generally viewed as burdensome for several reasons. 
First, in terms of accounting, the consumer must manually 
generate records and reconcile his or her accounts to keep 
track of such cash transactions. By utilizing a credit card 
issued by a financial institution, however, consumer trans- 
actions are recorded by such financial institution and 
accountings arc provided to the consumer on a monthly 
basis, which provides improved accounting and reconcilia- 
tion. 

In addition, using cash is a financially insecure method for 
protecting consumers against fraud and theft. For example, 
if a consumer believes that he or she has been sold an 
inferior or over-priced product, which frequently occurs 
during quick consumer transactions where the consumer 
may not have adequate time to reflect on the purchase until 
some time after such purchase, it is much easier for the 
consumer to contact the financial institution to stop payment 
on goods purchased using a credit card than it is for the user 
to recover cash from the merchant from whom such goods 
were bought. Moreover, it is virtually impossible for a 
consumer to recover cash that has been stolen or lost. On the 
other hand, if the consumer's credit cards are stolen or lost, 
the consumer can contact the corresponding financial insti- 
tution to cancel such cards and obtain new credit card 
accounts. 

Accordingly, there is a strong trend today in moving 
towards a "cashless society," which has caused a substantial 
increase in the use of credit cards, AIM cards and direct 
debit cards (collectively, "financial cards") for performing 
consumer transactions. Notwithstanding the perceived ben- 
efits of using financial cards rather than cash, there exists 
several disadvantages in using these cards. For example, if 
the consumer frequently uses a significant number of finan- 
cial cards, the consumer must physically possess all such 
cards in order to access a desired account. Having to carry 
such a large number of financial cards can be extremely 
burdensome to the consumer since a substantial amount of 
space is occupied by these cards in the consumer's wallet or 
purse. Moreover, if the wallet or purse is lost or stolen, the 
consumer must contact the financial institution for each 
financial card to cancel the account so as to prevent an 
unauthorized user from transacting business with such cards, 
which is also a burdensome task. 
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Another disadvantage in using financial cards is that 
consumers are not fully protected from the unauthorized use 
of lost or stolen cards. For example, a merchant can confirm 
the ownership of a credit card during a consumer transaction 

5 by comparing the authorized signature that is (or should be) 
written on the back of the credit card with the signature of 
the person signing the credit card receipt. Realistically, 
merchants generally do not compare these signatures during 
such a transaction, and even if they do, they may not 

10 compare such signatures with the level of scrutiny or skill 
needed to distinguish minor differences between the con- 
sumer's signature and the unauthorized user's forged sig- 
nature. Therefore, during the period of time between the 
time the consumer's credit card is lost or stolen and the time 

15 the consumer realizes such loss or theft and cancels the 
account, an unauthorized user who has found or stolen the 
card may charge a substantial amount of money to the 
consumer's card, leaving the consumer with the burden of 
having to dispute such unauthorized charges with the finan- 

20 cial institution. 

SUMMARY OF THE INVENTION 

It is therefore an object of the present invention to provide 
a portable information and transaction processing device 

25 ("personal digital assistant" or "PDA") in which a user can 
store his or her credit card, ATM card and/or debit card (i.e., 
financial) information, as well as personal information, and 
then access and write selected information to a smartcard 
("Universal Card"), which is then used to initiate a POS, 

30 ATM, or consumer transaction. 

It is another object of the present invention to provide a 
PDA device which utilizes biometric security to provide user 
verification prior to accessing and writing the selected 
financial and personal information to the Universal Card. 

It is yet another object of the present invention to provide 
a PDA device with digital certificate security, whereby the 
user is required to periodically download a temporary digital 
certificate from a central server of the service provider of 

^ such Universal Card into the PDA device prior to accessing 
and writing the selected financial and personal information 
to the Universal Card. 

It is still another object of the present invention to provide 
a PDA device with digital certificate security which is 

45 compatible with the current infrastructure (i.e., immediately 
employed without having to change the existing 
infrastructure) and which brings biometric security to elec- 
tronic data transfer systems that are currently unable to 
perform biometric verification. 

50 It is yet another object of the present invention to provide 
a PDA device with digital certificate security which can be 
extended to all applications or systems wherein magnetic 
and/or smartcards are used such as access control cards for 
accessing a device service or building, cash cards for per- 

55 forming ATM transactions, calling cards or cellular cards 
(for e.g., GSM (Group Special Mobile) digital cellular 
mobile radio system) for making telephone calls and 
employee cards for accessing confidential information. 
In one aspect of the present invention, a portable infor- 

60 mation and transaction processing device, comprises: central 
processing unit for controlling the functioning and for 
processing a plurality of operations of the device; memory 
means, operatively coupled to the central processing unit, 
for storing financial and personal information and for storing 

65 a temporary digital certificate; communication means, 
operatively coupled to the central processing unit, for estab- 
lishing a communication link with a central server at a 
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remote location to obtain the temporary digital certificate; The present invention advantageously eliminates the bur- 
user interface means, operatively coupled to the central den of having to carry a multitude of financial cards and/or 
processing means, for initiating at least one of the plurality credit cards that a user may frequently utilize. The financial 
of operations of the device and selecting a portion of one of information for each card may be stored in the PDA and 
the financial and personal information from the memory $ written to the Universal Card when needed. If the Universal 
means; a universal card, detachably coupled to the central ^ lost or sto len, the user will only have to contact the 
processing unit, for receiving the selected portion of one of service provider to cancel and reissue a new account In 
the financial and personal information; and programming addition, due to the biomctric and digital certificate security 
means, operatively coupled to the central processing unit whicn prote cts against the unauthorized access to the user's 
and responsive to the temporary digital certificate, for writ- 10 fiaancial and personal information, a lost or stolen Universal 
ing the selected portion of one of the stored financial and is to m unauthorized user. 

personal information to the universal storage card, whereby r . . 4 . u , , 

* . . « « . . ,i Further, the present invention may be immediately 

the programming means is prevented from writing the . , * *u j e u • ,u * »• 

. * J* ^. r 4 . c . a . , r , employed without the need tor changes m the existing 

selected portion of one of the financial and personal inror- • * / * A , TT . , ^ , , 

/ . , , . .i_ * j* *i i infrastructure since the PDA and Universal Card may be 

mation to the universal card when the temporary digital ... , „ . i 

* ' is utilized with any system which utilizes magnetic cards or 

certificate is invalid. . Jr : ; . . . . r t_ • * r i 

n nn smartcards for electronic data transfer such as pomt of sale 

The present invention is a portable client PDA with a or lutomated teUer machines (ATM) which 

touch screen or other equivalent user interface, which debi , capabflity . 

includes a microphone and a local central processing unit _ . , , . , . , , , 

(CPU) for processing voice activated commands and for M ™ esc . and other fea,ures and advantages of the 

processing biometric daU to provide biometric verification P«sent mvenUon wul become apparent from the following 

of a user. The present invention includes a memory for ? ctiuled ^caption of illustraUve embodiments which is to 

storing financial and personal information of the user and be read m "nnectiMi with the accompanying drawings. 

I/O capability for writing and reading information to and BRIEF DESCRIPTION OF THE DRAWINGS 

from various cards such as smartcards, magnetic cards, 25 

optical cards or EAROM (electrically alterable read-only FIG. 1 is a block diagram illustrating elements of a 
memory) cards. The present invention includes a Universal portable information and transaction processing device 
Card, which is a common generic smartcard with a unique according to an embodiment of the present invention; 
imprint (i.e., an account number) provided by a service FIGS. 2a and 2b are diagrams of the Universal Card 
provider, on which selected financial or personal informa- 30 according to an embodiment of the present invention; 
tion stored in the PDA can be downloaded to perform FIG. 3 is a block diagram showing the interaction of the 
various transactions The PDApreferably mcludes a modem uble informatioil and transaction processing device in 
and a serif lport and/or a paraUel port so as to provide duect conaection ^ processillg a transaction according to the 
communication capabibty with peripheral devices. The PDA present invention- 
is also capable of transmitting or receiving information 35 A . ' .„ . , 
through wireless communications such as radio frequency ^ * 15 a / ow lUus ^g * e client/server 
(RF) and infrared (IR) communication. modc of °P cratl011 m accordance with the present invention; 

The present invention is preferably operated in two FIG * 5 is a flow diagram illustrating the local mode of 

modes, i.e., a client/server mode and a local mode. The operation in accordance with the present invention; and 

client/server mode is periodically performed to download a 40 FIG. 6 is a flow diagram illustrating another local mode 

temporary digital certificate from a central server of the of operation in accordance with the present invention, 
service provider of the PDA and Universal Card. The 

1- 77 piu 1U " u . \ ,Z DETAILED DESCRIPTION OF PREFERRED 
client/server mode is performed by establishing communi- FMRnniMFNTS 
cation between the PDA and a central server of the service cJVlDUUlJVlfcJN la 
provider via modem or wireless communication. Once com- 45 It is to be understood that same or similar components 
munication is established, the central server verifies the user illustrated throughout the figures are designated with the 
either biometrically or through PIN or password or a com- same reference numeral. It is to be further understood that 
bination thereof, and then generates a temporary digital the elements or functional modules described herein in 
certificate which is downloaded into the PDA. A temporary, accordance with the present invention may be implemented 
unexpired digital certificate is necessary to access selected 50 in various forms of hardware, software, or a combination 
information stored in the PDA and write such information to thereof. Preferably, the main biometric verification elements 
the Universal Card. and speech recognition elements are implemented in soft- 
Next, the local mode of operation of the PDA is per- ware and may include any suitable and preferred processor 
formed to initiate a consumer transaction. Preferably, in the architecture for practicing the invention by programming 
local mode, the user selects one of the pre-enrolled credit 55 one or more general purpose processors. It is to be further 
cards that are stored on the PDA by stating a verbal understood that, because some of the components of the 
command into the microphone of the PDA, whereby the invention described wherein are preferably implemented as 
CPU processes the verbal command and performs user software modules, the actual connections shown in the 
verification. Alternatively, user verification (i.e, local figures may differ depending upon the manner in which the 
verification) may be performed by using either biometric 60 invention is programmed. Of course, special purpose pro- 
data, PIN or password, or a combination thereof. Upon local cessors may be employed to implement the invention. Given 
verification, the selected information is retrieved from the teachings of the invention herein, one of ordinary skill in 
memory and written to the Universal Card which is then the related art will be able to contemplate these and similar 
available to commence a transaction. In the absence of an implementations of the elements of the invention, 
unexpired digital certificate, however, the selected informa- 65 Referring initially to FIG. 1, a block diagram illustrating 
tion will not be written to the Universal Card notwithstand- elements of the portable information and transaction pro- 
ing that the user may have passed local verification. cessing (PDA) device 10 according to an embodiment of the 
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present invention is shown. The heart of the device is a The PDA device 10 may preferably be equipped with 
central processing unit (CPU) 12, which controls the opera- various communication ports such as a serial port 42 and a 
tions of the PDA device 10 via programs stored in a memory parallel port 44 (utilizing known computer interface 
14 and executed by the CPU 12. Specifically, the CPU 12 standards), operatively coupled to the CPU 12, as well as a 
includes an acoustic processor module 16 for processing 5 telephone line interface 46 (using a known interface 
voice commands inputted into the PDA device 10 through a connections), to provide means for establishing a commu- 
microphone 18. The acoustic processor module 16 is also nication link between the PDA device 10 and other periph- 
used for performing local speaker verification. The CPU 12 eral devices such as computers, modems and printers. For 
also includes a digital certificate processor module 20, for establishing wireless communication, the device may pref- 
processing a digital certificate obtained in the client/server 10 erably be equipped with an RF processor module 48, opera- 
mode of operation (to be discussed in detail below), and a tively connected between the CPU 12 and an RF port 50, for 
biometric processor module 22 for processing biometric data processing incoming RF information received by the RF 
in addition to, or alternative to voice data, to provide user port 50, and for generating transmission signals which are 
verification. The CPU 12 further includes an encrypter/ outputted from the RF port 50 using conventional construc- 
decrypter module 24 for encrypting the personal and fin an- 15 tions and techniques. The device may also be equipped with 
cial information before being stored in memory 14 and for an 1R processor module 52, operatively connected between 
decrypting such information when accessed by the user. the CPU 12 and an IR port 54, for processing incoming 
Although the illustrative embodiment herein shows the CPU optical information and for generating output optical signals 
12 comprising the digital certificate module 20, the using conventional constructions and known techniques, 
encrypter/decrypter module 24, the acoustic processor mod- ^ Preferably, the PDA device 10 includes a DTMF (dual tone 
ule 16 and the biometric processor module 22, it is to be multi-frequency) processor module 56 and a modem 58, 
understood that such modules may also be implemented as operatively coupled between the CPU 12 and the telephone 
special purpose modules each having a processor, associated line interface 46. Communication of financial information 
memory and stored programs for performing such functions. may be accomplished via modem communication and/or 

The PDA device 10 includes a smartcard reader/writer 26 25 DTMF tone communication on a telephone line, using 

(as is known in the art) for reading and writing information known methods. DTMF communication may be used for 

to and from various cards, e.g., magnetic cards, IC cards processing PINs for user verification and authorization, 

and/or EAROM cards (using known standards and Referring now to FIGS. 2a and 2b, diagrams of the 

techniques). During the local mode of operation of the PDA Universal Card 26 according to an embodiment of the 

device 10, a Universal Card 26 of the present invention is 30 present invention are shown. The Universal Card 26 is 

inserted into the smartcard reader/writer 30 and, upon user essentially a generic smartcard which includes either a 

verification, selected financial or personal information is magnetic band 28 (FIG. 2a) or integrated chip (IC) 29 (FIG. 

written to the Universal Card 26. When not in use, the 2b), or both, for storing the selected information which is 

Universal Card 26 may be stored in a smartcard storage retrieved from the memory 14 and written to the Universal 

compartment 32 of the PDA device 10. 35 Card 26 through the smartcard reader/writer 30 during the 

The PDA device 10 includes a user interface/display 34, local mode of operation of the PDA device 10. The Univer- 

which is preferably a liquid crystal display (LCD) touch sal Card 26 (issued by a service provider) contains a unique 

screen display (or equivalent user interface), for displaying Universal Card number 27 imprinted thereon, which corre- 

and/or inputting data associated with the operations or sponds to the designated user account number provided by 

functions of the PDA device 10. Alternatively, the interface/ 40 ^ service provider (which is analogous to the account 

display 24 may be comprised of a keyboard and a conven- number provided on a credit card or ATM card), 

tional LCD display. Additionally, the PDA device 10 may As more fully discussed below, the Universal Card num- 

audibly communicate with or request information from the ber 27 may be utilized to provide user verification in 

user through a speaker 26 which is operatively connected to consumer POS transactions utilizing a traditional mechani- 

the CPU 12 via a text-to-speech converter 38. The text-to- 45 cal sweeper instead of a magnetic sweeper which is capable 

speech converter 38 converts signals from the CPU 12 into of magnetically reading the magnetic band 28 of the Uni- 

synthesized speech which is then heard through the speaker versal Card 26. The unique Universal Card number 27 may 

36. The PDA device 10 may be configured to simultaneously also be used for to provide user verification in instances 

display such information along with generating the synthe- where consumer transactions are performed remotely over a 

sized speech. Furthermore, the PDA device 10 may operate 50 telephone. In such instance, as explained below, an autho- 

without a display (or a limited display) and rely on the rization number, which is unique to the current digital 

text-to-speech functions to communicate information to the certificate, will be displayed on the PDA device 10 upon user 

user of such device. verification. The authorization number, together with the 

A biometric sensor 40 of any conventional type may also unique Universal Card number 27, may be used to verify the 

be provided for collecting biometric data (other than voice 55 user. 

data which is received by the microphone 18) such as a Referring to FIG. 3, a block diagram illustrating the 
finger, thumb or palm print, a handwriting sample, a retinal interaction of the PDA device 10 in connection with pro- 
vascular pattern, or a combination thereof, to provide bio- cessing a transaction according to the present invention is 
metric verification as an alternative to, or in addition to, shown. The user of the PDA device 10 and Universal Card 
voice biometric verification. This data is then processed by 60 26 (FIGS. 1 and 2) must first perform an enrollment proce- 
the biometric processor module 22 to provide user verifica- dure with a service provider. Enrollment involves obtaining 
tion (i.e., biometric security) prior to accessing the financial a Universal Card 26 with a designated account number (i.e., 
and personal information stored in memory 14. It is to be the unique imprint 27 on the Universal Card 26) and 
appreciated by one of ordinary skill in the art that the providing the service provider with the user's credit card or 
biometric verification features of the PDA device may be 65 ATM card information so that such information can be 
replaced or supplemented with a PIN (personal identification verified with the financial institutions 70 that issued such 
number) or password to provide user verification. cards. This information is then stored on a central server 60 
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of the service provider The user may then subsequently through wireless communications, e.g., via the RF port 50 
download such information into the PDA device 10 by and the RF processor module 48. Further, the PDA device 10 
establishing a communication link (LI) with the central may be connected to the central server via a special ATM (or 
server 60. Alternatively, the credit cards or ATM cards may other such kiosks) which uses intranet and TCP/IP to con- 
be loaded into the PDA device 10 by directly reading 5 ncct to mc central server 60. It is to be understood that the 
information contained on such cards through the smartcard PDA device 10 may be operatively linked to the kiosk either 
reader/writer 30 of the PDA device 10. In such a situation, directly (e.g., via serial or parallel ports 42 and 44) or 
the PDA device 10 will compare the user ID of the credit through wireless communication via the RF port 50 or the IR 
cards with the user ID of the PDA device to verify the user port 53. As demonstrated above, it is to be appreciated by 
so as to prevent a user from downloading the information 10 one of ordinary skill in the art that the central server 60 of 
from cards owned by another person into the user's PDA me present invention is accessible through any conventional 
device 10. In the event that the PDA device is unable to communication channel. 

verify the owner of a card which is being directly down- 0nce communication has been established, the user is 

loaded via the smartcard reader/writer 30 (i.e., the card does prompted (either by text on the user interface/display 34 or 

not contain the name of its owner), the user will be required 1 , verbally through the text-to-speech converter 38 and speaker 

to enroll the card by providing the service provider with the 3 L *> to enter J**™ verification data (step 102). Such data is 

card information (to obtain verification from the appropriate mc ? ^ mi f* to £ c " ntx * servcr , 60 via ^ c commum- 

financial institution) and then connect to the ceniral server cation link LI. Specifically, the central server 60 may ask the 

*n ♦ a _i « ( i . c user a series of questions (which are randomly chosen from 

60 to download the card information. tU , 4 Vl c M ^ v , , , J , , 4 . 
rT T, . . the totality of questions asked and answered during the 
Enrollment also involves providing the service provider 20 enrollment process). Such questions are received by the 
with personal information such as the user's social security CPU 12 Q f the PDA device 10 and either displayed on the 
number, address, maiden name and date of birth, which is user interface display 34 or sent to the text-to-speech con- 
stored on the central server 60. Such information is then verter 38, where they are converted to synthesized speech 
used to verify the user during the client/server mode prior to and audibly transmitted to the user through the speaker 36. 
the issuance of a digital certificate. A personal identification 25 The central server 60 may also prompt the user to enter the 
number PIN and the Universal Card 26 with a unique PIN that was issued to the user during the enrollment 
account number 27 is provided by the service provider. Tliis process. 

information, as well as biometric data such as voice prints If such requested verification data is not provided within 

(models) of the user, are also stored in central server 60 of a predetermined time (step 104), the central server 60 will 

the service provider for user verification during the client/ 30 automatically disconnect the communication link LI, and a 

server mode to obtain a digital certificate (to be discussed in digital certificate will not be downloaded (step 106). On the 

detail below). The central server 60 is a computer which is other hand, if the user enters the requested verification data 

programmed to perform the functions described herein such in timely manner (step 104), the central server 60 will 

as biometric verification, speech recognition and generating process such data (step 108). The user may provide the 

and downloading a temporary digital certificate. 35 requested verification data by providing answers to the 

Referring to FIGS. 1, 3 and 4, the client/server operating questions by speaking into the microphone 18. The audio 

mode of the present invention is now described. As indicated signals are then received by the CPU 12 and then directed to 

above, the user must periodically connect the PDA device 10 the acoustic processor module 16, wherein the user's 

with the central server 60 of the service provider (Link LI, answers are processed and transmitted to the central server 

FIG. 3) in order to obtain a valid digital certificate from the 40 60 via the communication link LI. In addition, the user may 

central server 60 prior to initiating a consumer transaction. enter his or her assigned PIN through the user interface 

Specifically, the digital certificate is binary encrypted file display 34. This PIN is then processed by the DTMF 

that must be downloaded into the PDA device 10 before processor module 56 to generate corresponding tone signals 

personal or financial information of the user can be written which are received and processed by the central server 60. 

to the Universal Card 26. The digital certificate contains 45 Preferably, the PIN can be provided by stating, e.g., "My pin 

information relating to (but not limited to) the account number is 3456" into the microphone 18, wherein the audio 

number of the PDA device 10, the date on which the digital signals are processed by the acoustic processing module 16, 

certificate was authenticated and its expiration date, as well and then transmitted to the central server 60 via the estab- 

as any constraints which exist for each enrolled card. The lished communication link LI. 

digital certificate is stored in the memory 14 of the PDA 50 While the user is entering the requested verification data, 

device 10. Prior to the execution of a transaction (i.e., the central server 60 begins processing the verification data 

downloading selected card information from the memory 14 (step 108). Specifically, the central server 60 will perform 

to the Universal Card 26), the digital certificate is decrypted speaker verification to compare the user voice models that 

by the encrypter/decrypter module 24 and loaded into the were processed and compiled by the CPU 12 of the PDA 

digital certificate processor module 20 wherein it is pro- 55 device 10 with the user's voice prints that were stored in the 

cessed to determine if it is valid. . central server 60 during the enrollment process. Further, the 

In order to obtain the digital certificate, the user must central server 60 compares the answers given by the user 

establish a communication link (Link LI, FIG. 3) with the with the answers provided during the enrollment process to 

central server 60 of the service provider (step 100, FIG. 4). determine if they match. The central server 60 may also 

Communication may be established by dialing into the 60 verify whether the PIN entered by the user corresponds to 

central server 60 through a telephone line via the modem 58 the PIN that was issued during the enrollment process. If, 

and telephone line interface 46. It is also contemplated by after processing the verification data, the central server 60 

the present invention that communication may be estab- determines that the user is not an authorized user (step 110), 

lished with the central server 60 through a digital commu- the communication link LI will be disconnected and no 

nication channel such as internet, intranet or local area 65 digital certificate will be downloaded (step 106). 

network. Alternatively, communication between the PDA It is to be appreciated that any conventional speech/ 

device 10 and the central server 60 may be established speaker recognition system may be employed by the present 
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invention. The present invention is not, in any way, limited specific financial card information to be used, the limit on 
to use with or dependent on any details or methodologies of the amount of allowed spending allowed over the lifetime of 
any particular speech/speaker recognition system which the temporary digital certificate and/or the period of time in 
may be employed Preferably, the speaker recognition sys- which the temporary digital certificate will remain valid 
tern utilized by the central server 60 and the PDA device 10 s (step 112). This information is received and processed by the 
in accordance with the present invention is the system which central server 60 and a digital certificate is then created and 
performs text-independent speaker verification and asks encoded with the user requested limitations (step 114). This 
random questions, i.e., a combination of speech recognition, digital certificate is then encrypted by the central server 60 
text independent speaker recognition and natural language and downloaded into the digital certificate processing mod- 
understanding using acoustic and non-acoustic models to ulc 20 of the CPU 12 via the established communication link 
provide security from unauthorized access to a service/ LI (step 116). It is to be understood that the present 
facility (i.e., the central server 60) such as disclosed in U.S. invention may employ any known encryption technique or 
Ser. No. 08/871,784, filed on Jun. 11, 1997, and entitled: algorithm for the encryption/decryption process, such as 
"Apparatus And Methods For Speaker Verification/ those disclosed in "Applied Cryptography," by Bruce 
Identification/Classification Employing Non-Acoustic And/ , . Schemer, second edition, Wiley, 1 996. The digital certificate 
Or Acoustic Models and Databases/' which is commonly 15 15 th f° *?ndm memory 14 of the PDA device 10. With 
assigned to the assignee of the present invention and the a vah ? [<h ^ u^r can then perform the local 
,. f r l • ■ u c operating mode of the PDA device 10. 
disclosure of which is incorporated herein by reference. , . ■ , ■ 

More particularly, the text-independent speaker verification It « to be appreciated that as demonstrated above, the 

* * # li u j * la. f present invention may utilize PIN or password protection m 

system is preferably based on a frame-by frame feature M Qr m ^ ve F rification ^ obtain the 

^ff 1 ^ 0 ? 11011 , 11 * d ^S?^!Si, in Y"?^!!"/^' 0a/ 3 88 ; necessary digital certificate from central server 60. 

471 filed on Jan. 28, 1997 and entitled: "Text Independent Uovtov& l the & me thods disclosed in the above-referenced 

Speaker Recognition for Transparent Command Ambiguity U>S . Ser. No. 08/873,079 may be utilized in the present 

Resolution And Continuous Access Control," which is com- invention to remotely authenticate, reset or revoke the user's 

monly assigned to the present assignee and the disclosure of ^ password, logons, PIN and/or encryption/decryption keys, 

which is also incorporated herein by reference. whereby the user may establish communication with the 

As explained in the above-incorporated reference U.S. central server 60 (via the PDA device 10) to request, e.g., a 

Ser. No. 08/871 ,784, text-independent speaker recognition is PIN change. 

preferred over text-dependant or text-prompted speaker rec- Referring now to FIGS. 1, 3 and 5, the local operating 

ognition because text independence allows the speaker rec- 30 mode of the present invention is now described. The local 

ognition function to be carried out in parallel with other mode of operation is commenced by the user selecting a 

speech recognition-based functions in a manner transparent pre -enrolled credit card that is stored in memory 14 (step 

to the caller. It is to be understood, however, the present 200). The selection process is preferably performed by voice 

invention can employ text-dependant or text-prompted activated commands (e.g., by stating into the microphone 18 

speaker verification. 35 "I want to use my American Express Card"). Such voice 

It is to be further appreciated that the automatic speech/ commands are then received by the CPU 12 and processed 

speaker recognition system disclosed in U.S. Ser. No. in the acoustic processor module 16. It is to be appreciated 

08/873,079, filed on Jun. 11, 1997, entitled "Portable Acous- that any known command and control engine for speech 

tic Interface For Remote Access to Automatic Speech/ recognition may be employed in the present invention such 

Speaker Recognition Server," which is commonly assigned 40 as the commercially available large vocabulary IBM VIA- 

to the present assignee and the disclosure of which is VOICE GOLD system to perform the speech recognition 

incorporated herein, may preferably be employed in the functions in accordance with the present invention, 

present invention to provide for accurate speech recognition Alternatively, the desired card may be selected through 

communication in remote transactions between the PDA the user interface/display 34. The CPU 12 then searches the 

device 10 and the central server 60. 45 memory 14 for the desired information (step 202). If the card 

Particularly, as explained in above U.S. Ser. No. 08/873, was not previously stored in the PDA device 10 during the 

079, there are certain problems associated with remote enrollment process, the user will be prompted to select 

communications between a server/client systems utilizing another card (step 204). 

automatic speech/speaker recognition. Such problems If the requested card information is found in memory, 

include the loss of accuracy of data due to degradation of 50 biometric verification must be performed before the card 

voice data which is transmitted over a communication information can be written to the Universal Card 26. 

channel and the varied background noises at the user end Alternatively, as stated above, PIN or password verification 

which reduces the accuracy in speech recognition. Such by be performed in lieu of, or in addition to, biometric 

problems are remedied by preprocessing the speech signals verification. In the preferred embodiment of the present 

that are transmitted over the communication channel to the 55 invention using voice activated commands to select the 

server. Such pre-processing includes characterizing the desired card, the microphone 18 functions as a biometric 

acoustic features of the transmitting device, the sensor for receiving biometric voice data. This biometric 

environment, the speaker and the communication channel, voice data is then sent to the acoustic processor module 16 

whereby such information is then processed by the central wherein such data is processed (step 206) by comparing the 

server to set references, select appropriate decode models 60 current biometric voice data with the user's voice models 

and algorithms to recognize the speaker or decode the stored in memory 14. Although such verification may be 

speech by modeling the channel transfer function and the performed by any conventional method, the speaker verifi- 

background noise to reduce the word error rate of the speech cation methods disclosed in the above-referenced 

or to accurately perform speaker recognition. applications, U.S. Ser. Nos. 08/871,784 and 08/788,471 are 

Referring back to FIG. 4, if, on the other hand, the user is 65 preferably employed in the present invention, 
verified (step 110), the central server 60 will then prompt the In another embodiment of the present invention, a bio- 
user to provide certain transaction limitations such as the metric sensor 40 of any known type may be used in lieu of, 
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or in conjunction with the microphone, to collect biometric reader/writer of the PDA device 10. Alternatively, such 

data to be processed by the biometric processor module 22 information may be transferred by wireless communication 

using known techniques, e.g., finger, thumb or palm print between the PDA device of the patient and the PDA device 

data, handwriting data, a retinal vascular pattern data or a °f me doctor. 

combination thereof. Again, in a further embodiment of the 5 It is to be further appreciated that the invention may 

present invention, PIN or password verification may be interact with electronic fund transfer systems or transaction 

utilized in lieu of, or in addition to such biometric verifica- terminals having wireless or direct communication capabili- 

tion techniques. ties w^ut even having to use the Universal Card 26. 

« « . Specifically, as demonstrated by the dotted lines in FIG. 5, 

After the biometnc : data js processed by the acoustic g^a* .ransaclion may be performed by transmitting 

processing module 16(when voi<^ venficaUonisuUloed or « ^ ^ ^^J^lly from the PDAdeviw 

the biometnc processor module 22 (when other biometnc . . A ™, nr DriC . , t , nn . . 

** , jv , \, , , to the ATM or POS transaction terminal through an estab- 

verification methods are used), or both, a determination is , - . , T * / . ~?7. . 

. . . . " « ' . - nox lished communication hnkL2 (step 228, FIG. 3) (i.e., via the 

made as to whether the user is an authorized user (step 208). . , , _r AA A a-> *L m ~* ca 

vc . . , . « « , . j j . f -ii serial port 42, the parallel port 44 modem 42, the IR port 54 

If the user is not verified, the selected card information will _ V ' \. „ ' 

. . , y • . . - , 4 _ i/lX Tf . or the RF port 50), rather than retrieving and writing card 

not be written to the Universal Card 26 (step 210). If the user 15 . f .. r . , T . t ^ , ^ - # f 

j . «. . i . / . , mformation to the Umversal Card 26. Further, a receipt of 

is verified, the digital certificate (previously obtained in the 4 ^ . _ il 4 . t 4 . nrk A , , . 

r ' , . .-^ J 1yl - , . . the transaction can be directly transmitted to the PDA device 

chent/server mode) « retneved from memory -14 and loaded communication link L2 (step 230). It is to be 

into the digital certificate processor moduk 20. The digital underst0 ^ t „ at fa mjs em5odiment( , he Vu 12 ' of me PDA 

certificate processor ^module -. 20 processes the d^tal certnl- ^ w ^ , ^ card mfonnatioD from 

catc to determine whetoer the digital certificate is still valid *> retrieve / and transmitte d to the transaction terminal 

(i.e., unexpired) and whether the use of the selected card has g0 *^ ^ k biometricilU verified ^ tf ^ ^ 

been prohibited or limited by the user requested lmiitaUons certificate vaUd ( ^ > ^ embodi . 

of such card dunng the chentfserver mode step 212). If the ment ' pD £ deyice „ 

digital certificate is not valid i.e expuxd) the selected card am ^ ^ of ^ UDiveKal ^ M 

information will not be written to the Umversal Card 26 25 *i i* • , j ci_ • * a 4 •* < L 

^ * 1 consequently, eliminates the need of having to first write the 

^ ^ selected card information to the Universal Card 26 and then 

If the digital certificate is valid (i.e, unexpired) the sweep the Universal Card 26 through the magnetic reader of 

requested card mformation is then retneved from memory me P0S or ^nyj transaction terminal. 

14 and stored in the encrypter/decrypter module 24. The Advantageously, the present invention provides biometric 

selected card mformation is then decrypted by the sccun ^ y for ^^0^ that do not involve electronic data 

encryption/decryption module 24 using an encryption key transfer ^ 

as transactions that are processed with tradi- 

unique to the PDA device 10 (step 214). The decrypted card ^ mcchanical credit card crs or t^^^ th at 

information is then sent to the smart card reader/wnter 30 m rformed remo tely over the telephone. In such 

where it is then written to the Universal Card 26 (step 216) situations> a merc hant can confirm that the user passed local 

The Universal Card 26 is then removed from the smartcard verification b ^ to UQi Universal Ca rd number 27 

reader/wnter 30 and swept trough the magnetic readmg (FIG 2) { ^ ^ m authorization numbcr wbich is 

devioeof thetnns^ntenn^ based on the CUfrent valid nttiteate and generated 

consumer transaction information is then sent to the proper u Uficr ver ifi ca ti on 

financial institution 70 via communication link L4 (step „ - . ' - „^ ^ „ 

22ft\ 40 By way of example, refernng to FIG. 6, a now diagram 

illustrating the local mode of the PDA device 10 during a 
In a more advanced transaction terminal 80, the Universal rcmote (or mcchanical swe eper) consumer transaction is 
Card 26 may be overwritten with a receipt of the transaction shown When operaling me PDA device 10 m the local 
by the POS or ATM transaction terminal 80 (step 222). With modCj d thc ^ is b i om etrically verified (step 308) and the 
this feature, the user can keep an accounting of his or her 45 PDAdev i ce 10 contains an unexpired digital certificate (step 
transactions by inserting the Universal Card 26 into the 3W) ^ card information ^ retrieved from 
smartcard reader/wnter 30 and then loading the receipt memory 14 and decrypted (step 314). The desired credit card 
information into the memory 14 of the PDAdevice 10 (step information, as well as an authorization number, is then 
224). The user can subsequendy transfer such information to displayed on the user interface/display 34 (step 316). This 
a personal computer containing accounting software such as 5Q m f onnation can then be verbally communicated to the 
the software sold under the tradename QUICKEN. merchant in order to process the transaction. If the user is not 
Advantageously, the present invention is immediately biometrically verified, or if the PDA device 10 contains an 
employable with the current infrastructure since the Univer- expired digital certificate, the selected card information and 
sal Card 26 is compatible with all credit card and/or smart- authorization number will not be displayed, (step 312). 
card electronic fund transfer systems (e.g., systems that 55 The merchant can verify that local verification of the user 
process ATM cards, debit cards, credit cards, access control has been properly obtained by establishing a communication 
cards, calling cards and/or service cards). 12 (fig. 3) with the central server 60. If the selected 
It is to be appreciated that the present invention may be card information corresponds to a credit card that was 
used to store and access personal information such as previously enrolled (i.e., registered) with the service pro- 
medical, financial information and other confidential infor- 60 vider of the PDAR device 10 and Universal Card 26, upon 
mation which may be accessed and written to the Universal transmitting the selected card information to the financial 
Card 26 or displayed on the user interface/display 34 institution (or calling such institution to confirm the validity 
(assuming a valid digital certificate and local user of me credit card), the merchant will be requested to provide 
verification). For example, medical doctors with special the authorization number (which is generated upon user 
smartcards can access certain medical information from the 65 verification), in addition to the expiration date of the credit 
PDA device of a patient (upon patient verification) by card. The merchant will then transmit the Universal Card 
writing such information to the smartcard via the smartcard number 27 and the displayed authorization number to the 
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central server 60. Since the authorization number is a The present invention has heretofore been illustrated as a 

function of the unexpired digital certificate that was obtained separate portable device. It is to be understood by one of 

from the central server 60 in the client/server mode, the ordinary skill in the art that the configuration of the present 

central server 60 inform the merchant that the user was invention may be embedded in other CPU based systems 

properly verified (step 318). 5 such as a cellular phone, a portable laptop, a network 

It is to be appreciated that local verification may also be computer (NC), or a PC having built in the components of 

performed by signature verification, whereby a digitized me above described PDA device 10. For example, a portable 

image of the user's valid signature is displayed on the user laptop having the smartcard reader/writer 30 of the PDA 

interface/display 34 using known techniques so that a mer- device 10 may be directly connected to the central server 60 

chant can compare the digitized signature on the screen to 1Q through a modem or through an internet server by protocols 

the user's written signature to provide further authentication. such as TCP/IP to download a valid digital certificate. 

Further, the present invention may utilize any conventional Moreover, the functions and components of the PDA 
pressure sensitive display wherein the user of the PDA device 10 may oe built int0 a cellular phone, whereby 

device 10 may sign his or her signature on the display, which communication with the central server 60 may be achieved 

is then processed and compared wi^ an authenUc digitized mrou ^ a celMar communication channel, which may be 

signature stored in the ^memory 14 of ^he PDA device 10. An ^ ( CDMA, GSM, etc.). 

example of such technique is disclosed, for example, in ¥ . • , . r j- - * . ^ 

"Automatic On-line Signature Verification," by Vic Nalwa, L 11 15 to be , a PP^ a . t( * b * ™f° f ordinar y ^ m ^ 

Proc IEEE pp 215-239 February 1997 mat a sp 601 ^ ATM, kiosk or POS terminal can be employed 

It is to be' furiher appreciated that' the PDA device 10 and t0 P erform methods and functions of the present inven- 

system of the present invention can be configured to afford 20 Hon in lieu of the actual PDA device, thereby eliminating the 

an additional level of security for user verification, whereby need 10 physically posses the PDA device 10. For instance, 

the financial institution (e.g., credit card company) can a smartcard having a valid digital certificate and the user's 

verify the identity of the consumer during a purchase verification data (e.g, biometric data (voice print), PIN 

transaction. Specifically, during a consumer transaction, and/or password) and card information stored thereon may 

upon local verification (biometric, PIN and/or password) 25 be inserted into the ATM, kiosk or POS terminal, which are 

and assuming, of course, that a valid digital certificate was be equipped with biometric sensors such as a microphone, 

previously downloaded from the central server 60, the PDA The ATM can then verify the user biometrically or via PIN 

device 10 can be programmed to download the selected card or password. Assuming the digital certificate is valid, the 

information in encrypted form to the Universal Card 26, as ATM can then initialize the smartcard which may then be 

well as an encrypted file containing unique identifying 30 used to perform, for example, a purchase transaction. The 

information pertaining to the consumer including, but not smartcard may then be used for the duration of the validity 

limited to, such as the consumer's name and account number of the digital certificate (i.e., until the digital certificate 

(issued by the service provider of the PDA device 10 and expires) or until another card is loaded. In this embodiment, 

Universal Card 26). The selected card information, as well the smartcard can be used for only a limited amount of 

as the encrypted information file, would be transmitted to the 35 transactions. The digital certificate may be downloaded to 

POS terminal (via the Universal Card, RF or IR) and then the smartcard by any method analogous to the PIN mainte- 

transmitted in encrypted form directly to the processing nance techniques disclosed in the above incorporated U.S. 

financial institution together with the purchase details. Ser. No. 08/873,079, "Portable Acoustic Interface For 

Similarly, for purchase transactions with remote services Remote Access to Automatic Speech/Speaker Recognition 

(e.g. via the internet with a merchant's Web site), the 40 Server." For example, the user may establish a communi- 

selected card information in encrypted form, as well as the cation link with the central server 60 service provider 

encrypted user information, would be transmitted via through a personal computer having a smartcard reader, 

modem (TCP/IP) to the remote service (i.e., Web site) and whereby a valid digital certificate may be download onto the 

then transmitted in encrypted form to the financial institu- smartcard after the user provides verification information 

tion. It is to be appreciated that the encrypted information 45 such as user ID, PIN, smartcard serial number, and/or 

may be transmitted to the merchant's Web site either directly biometric data. 

from the modem 58 of the PDA device 10, or by download- It is to be further appreciated that the PDA device 10 of 

ing such information to the Universal Card 26, which is then the present invention may be used as a personal credit card 

read and transmitted by a PC equipped with a smartcard center whereby funds may be directly transferred between 

reader and a modem. 50 individuals having such PDA devices via credit cards or 

Next, assuming the credit card was previously enrolled debit cards. For example, assume that User A owes User B 

with the service provider, the processing financial institution a certain amount of money. User A will perform local 

would posses the requisite key (provided by the service verification (assuming that user A has a valid digital 

provider upon enrollment) to decode (i.e., decrypt) the certificate) to download selected credit card or debit card 

transmitted information to verify the identity of the user. 55 information to User A's Universal Card. User A will then 

Consequently, the processing financial institution would provide User B with the Universal Card which is then 

provide an authorization number for the transaction to the inserted into the smartcard reader/writer 30 of the PDA 

merchant if the consumer was verified or, on the other hand, device 10 of User B. User B then selects the amount of 

deny the transaction and inform the merchant if the con- money to be transferred (i.e., debited) from the Universal 

sumer is not authorized to use the selected card. 60 Card (i.e., selected credit card) to any one of User B's 

Alternatively, the PDA device 10 can be programmed to enrolled financial accounts (e.g., credit card accounts). User 

download a copy of the valid temporary digital certificate in B then obtains the authorization number produced by the 

encrypted form (as well as the selected card information in PDA device of User A upon local verification, and enters 

encrypted form) to the Universal Card 26, whereby the such number into the PDA device of User B. Of course, the 

digital certificate containing the requisite information to 65 above procedure may be performed directly (e.g., via IR 

identify the user would be transmitted (with the selected communication) instead of physically exchanging the Uni- 

card information) to the corresponding financial institution. versa! Card. 
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To prevent fraudulent transactions, the authorization num- 
ber produced by the PDA device of User A must be inputted 
into the PDA device of User B after the amount of the 
transaction is entered into the PDA device of User B and 
verified by User A. In other words, the PDA device of User 5 
B must be configured such that the authorization number 
from User A will not be accepted by the PDA device of User 
B unless the amount of the transaction is first entered into the 
PDA device of User B. Moreover, the PDA device of User 
B must be configured such that the authorization number of 
User A entered into the PDA device of User B is valid for 
only one transaction (i.e., one amount of money entered into 
the PDA device of User B), whereby the entire process must 
be subsequently repeated for each additional transaction 
between User A and User B. Alternatively, to prevent fraud, 
the PDA device of User A may be configured such that the 15 
authorization number produced by the PDA device of User 
A contains the amount of money to be transferred to the 
account of User B in an encrypted or, otherwise, hidden form 
so that User B cannot access and manipulate such amount. 

After entering User A's authorization number, User B will 
establish a communication link with the service provider to 
verify that the authorization number corresponds to User A's 
unique Universal Card number and then have the funds 
transferred to User B's selected account (assuming the 
account is registered with the service provider). 

One of ordinary skill in the art can envision various 
methods for implementing the present invention for com- 
municating the selected card information. For instance, in 
the near future, information may be communicated between 3Q 
individuals and systems via personal area network (PAN) 
which links special electronic devices having a transceiver 
and CPU carried on the individuals using human conduc- 
tivity. Such concept may be employed in the present inven- 
tion whereby the selected card information is transferred ^ 
upon human contact (e.g., shaking hands) rather than being 
transferred through a magnetic or smartcard or wireless 
communication. Specifically, the present invention may be 
embedded into the CPU of a PAN device whereby selected 
card information may be transmitted to receiving devices 4Q 
such as AIM'S and POS terminals which are equipped with 
the requisite software and hardware to support PAN data 
exchange. 

Although the illustrative embodiments of the present 
invention have been described herein with reference to the 
accompanying drawings, it is to be understood that the 
invention is not limited to those precise embodiments, and 
that various other changes and modifications may be 
affected therein by one skilled in the art without departing 
from the scope or spirit of the invention. All such changes 5Q 
and modifications are intended to be included within the 
scope of the invention as defined by the appended claims. 

What is claimed is: 

1. A portable information and transaction processing 
device, comprising: 

a central processing unit; 

a memory device, operatively coupled to said central 
processing unit, for storing transaction information 
comprising one of financial information, personal 
information, and a combination thereof; 60 

communication means for establishing a communication 
link with a central server of a service provider, disposed 
at a remote location, to download a temporary digital 
certificate issued by said service provider; 

a user interface, operatively coupled to said central pro- 65 
cessing unit, for selecting at least a portion of said 
transaction information; 
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a card reader; 

a universal card having a unique card number designated 
to a subscribing user of said service provider, wherein 
the universal card is inserted into said card reader to 
receive said selected portion of said transaction infor- 
mation; and 

programming means, executable by said central process- 
ing unit, for determining if said temporary digital 
certificate is valid, for writing said selected portion of 
said transaction information to said universal card if 
said temporary digital certificate is deemed valid, and 
for preventing said selected portion of said transaction 
information from being written to said universal card 
when said temporary digital certificate is deemed 
invalid. 

2. The device according to claim 1, further comprising 
verification means for verifying if a user of said device is an 
authorized user and wherein said programming means com- 
prises means for preventing said selected portion of said 
transaction information from being written to said universal 
card if the user of said device is not verified. 

3. The device according to claim 2, wherein said verifi- 
cation means includes one of biometric verification means, 
PIN (personal identification number) verification means, and 
a combination thereof. 

4. The device according to claim 3, wherein said biomet- 
ric verification means includes: biometric sensor means for 
receiving biometric data from a user of said device; and 
biometric processing means for processing said biometric 
data to determine if said user of said device is an authorized 
user. 

5. The device according to claim 4, wherein said biomet- 
ric data is derived from one of a finger, thumb or palm print, 
a voice print, a handwriting sample and a retinal vascular 
patter and a combination thereof. 

6. The device according to claim 4, wherein said biomet- 
ric verification means performs speaker verification and said 
biometric data is voice data. 

7. The device according to claim 6, wherein said speaker 
verification is text-independent speaker verification. 

8. The device according to claim 1, further comprising 
encrypting/decrypting means, operatively coupled to said 
central processing unit, for encrypting said transaction infor- 
mation prior to said transaction information being stored in 
said memory device and for decrypting said selected portion 
of said transaction information. 

9. The device according to claim 1, further comprising 
speech recognition means, operatively coupled to said cen- 
tral processing unit, for processing voice commands from an 
authorized user of said device. 

10. The device of claim 1, wherein the temporary digital 
certificate includes one of an expiration date, the unique card 
number of the universal card, transaction Limitation data, and 
a combination thereof. 

11. An information and transaction processing system, 
comprising: 

a central server associated with a service provider of a 

subscribing user; 
a transaction terminal; and 
a portable communication device comprising: 

a central processing unit; 

a memory device, operatively coupled to said central 
processing unit, for storing transaction information 
comprising one of financial information, personal 
information, and a combination thereof; 

communication means for establishing a communica- 
tion link with said central server to download a 
temporary digital certificate from said central server; 
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a user interface, operatively coupled to said central 
processing unit, for selecting at least a portion of said 
stored transaction information; 

a card reader, 

a universal card having a unique card number desig- 
nated to the subscribing user by said service 
provider, which is inserted in said card reader to 
receive said selected portion of said transaction 
information; and 
programming means, executable by said central pro- 
cessing unit, for determining if said temporary digi- 
tal certificate is valid, for writing said selected por- 
tion of the transaction information to said universal 
card if said temporary digital certificate is deemed 
valid, and for preventing said selected portion of the 
transaction information from being written to said 
universal card if said temporary digital certificate is 
deemed invalid; 
whereby said universal card is presented to said transac- 
tion terminal for initiating a user-desired transaction if 20 
said selected transaction information is written to said 
universal card. 

12. The system of claim 11, wherein said central server 
comprises verification means for receiving and processing 
verification data of a user of said portable device, which is 25 
transmitted from said portable device, to verify if the user of 
said portable device is a subscribing user, whereby said 
digital certificate is transmitted to said portable device only 

if said user is verified. 

13. The system of claim 11, wherein said portable com- 
munication device further comprises verification means for 
verifying if a user of said portable communication device is 
authorized to use said portable communication device, and 
wherein said programming means comprises means for 
preventing said selected transaction information from being 
written to said universal card if the user of said portable 
communication device is not verified. 

14. A method for performing an electronic transaction, 
comprising the steps of: 

using a portable communication device to establish a 
communication link with a central server of a service 
provider; 

verifying, by the central server, the identity of a user of the 
portable communication device to determine if the user 
is a subscribing user of the service provider, 

downloading a temporary digital certificate from the 
central server to the portable communication device, 
the temporary digital certificate being issued by the 
service provider if the user is verified as a subscribing 
user; 

selecting, by the user of said portable communication 
device, desired transaction information stored in the 
device to perform an electronic transaction; 

verifying, by the portable communication device, if the 
user is an authorized user of said device; 

determining, by the portable communication device, if the 
downloaded temporary digital certificate is valid; and 
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providing the selected transaction information to an elec- 
tronic transaction terminal to perform an electronic 
transaction, if the user is deemed an authorized user and 
the temporary digital certificate is deemed valid. 

15. The method of claim 14, wherein the step of providing 
the selected transaction information to an electronic trans- 
action terminal comprises the steps of: 

retrieving said selected transaction information stored in 

said portable device; 
decoding the selected transaction information using a key 

from the temporary digital certificate; 
establishing a transaction communication link with said 

electronic transaction terminal; and 
transmitting said decoded transaction information over 

said transaction communication link to said electronic 

transaction terminal. 

16. The method of claim 14, wherein the step of providing 
the selected transaction information to an electronic trans- 
action terminal comprises the steps of: 

retrieving said selected transaction information stored in 

said portable device; 
decoding the selected transaction information using a key 

from the temporary digital certificate; 
writing the decoded transaction information to a universal 

card in a card reader of the portable device; and 
providing the universal card with the decoded transaction 

information to the electronic transaction terminal. 

17. The method of claim 14, further comprising the steps 

of: 

generating an authorization number associated with the 
temporary digital certificate; and 

verifying the transaction by the transaction terminal, 
wherein the step of verifying the transaction comprises 
the steps of establishing a communication link with the 
central server by the electronic transaction terminal, 
and transmitting the authorization number and an 
account number of said subscribing user to said central 
server. 

18. The method of claim 14, wherein the temporary digital 
certificate includes one of an expiration date, an account 
number of the subscribing user, transaction limitation data, 
and a combination thereof. 

19. The method of claim 18, wherein one of the expiration 
date, transaction limitation data, and a combination thereof, 
of the temporary digital certificate is selected by the user of 
said portable communication device, if the user is verified by 
the central server as a subscribing user. 

20. The method of claim 14, wherein the steps of veri- 
fying by the central server and the portable communication 
device are performed using one of biometric verification, 
PIN (personal identification number) verification, and a 
combination thereof. 
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